ID:9307 - Exploit for Improper Authentication in SonicWall GMS and SonicWall Analytics - CVE-2023-34124

CSH
CYBERSECURITY HELP
Sign In REGISTER
 
Main Vulnerability Database Exploits ID:9307 - Exploit for Improper Authentication in SonicWall GMS and SonicWall Analytics - CVE-2023-34124

ID:9307 - Exploit for Improper Authentication in SonicWall GMS and SonicWall Analytics - CVE-2023-34124

Published: September 8, 2023


Vulnerability identifier: #VU78331
Vulnerability risk: High
CVE-ID: CVE-2023-34124
CWE-ID: CWE-287
Exploitation vector: Remote access
Vulnerable software:
SonicWall GMS
SonicWall Analytics

Link to public exploit:


Vulnerability description

The vulnerability allows a remote attacker to bypass authentication process.

The vulnerability exists due to insufficient checks in the Web Service. A remote attacker can bypass authentication process and gain unauthorized access to the application.


Remediation

Install updates from vendor's website.